lion-gu / ioc-explorer

Related projects ⓘ

Alternatives and complementary repositories for ioc-explorer

• baronpan / SysmonHunter
  An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal
  ☆202Updated 2 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆98Updated 3 years ago
• fox-it / cobaltstrike-extraneous-space
  Historical list of {Cobalt Strike,NanoHTTPD} servers
  ☆122Updated 5 years ago
• We5ter / Flerken
  A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会
  ☆164Updated 5 years ago
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆255Updated 5 years ago
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 5 years ago
• brakmic / Sinkholes
  Malware Sinkhole List in various formats
  ☆102Updated 2 years ago
• Kart1keya / Hachi
  This tool maps a file's behavior on MITRE ATT&CK matrix.
  ☆57Updated 4 years ago
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆79Updated 3 years ago
• olafhartong / detection-sources
  ☆53Updated 5 years ago
• mitre-attack / attack-evals
  ATT&CK Evaluations website (DEPRECATED)
  ☆59Updated 3 years ago
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆73Updated 6 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• OTRF / detection-hackathon-apt29
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆132Updated 4 years ago
• jvdroit / Suricata-rules
  ☆9Updated 7 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆112Updated 5 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆101Updated 2 years ago
• michael-yip / APTMalwareNotes
  A repository of open source reports on different malware families used in targeted cyber intrusions ("APT").
  ☆51Updated 9 years ago
• DarkenCode / yara-rules
  Repository of yara rules
  ☆45Updated 9 years ago
• jymcheong / AutoTTP
  Automated Tactics Techniques & Procedures
  ☆251Updated last year
• Cherishao / APT-Sample
  Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.
  ☆174Updated 5 months ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 4 years ago
• Elemental-attack / Elemental
  Elemental - An ATT&CK Threat Library
  ☆314Updated last year
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆76Updated 2 years ago
• ashemery / CuckooVM
  Cuckoo running in a nested hypervisor
  ☆128Updated 4 years ago
• cyware-labs / Threat-Response-Docker
  ☆42Updated last year
• claroty / CVE2020-0796
  CVE2020-0796 SMBv3 RCE
  ☆61Updated 4 years ago
• 401trg / detections
  This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…
  ☆120Updated 3 years ago
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆206Updated last year
• RF-CTI / SANS-summit
  ☆30Updated last year